Cyber Security

Articles on SystemTek’s website that relate to cyber security.

NewsSecurity Vulnerabilities

Adobe ColdFusion CAR File Parsing Directory Traversal Remote Code Execution Vulnerability (CVE-2025-61808)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe ColdFusion.

Read More
NewsSecurity Vulnerabilities

AzeoTech DAQFactory Pro CTL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability (CVE-2025-66589)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of AzeoTech DAQFactory.

Read More
NewsSecurity Vulnerabilities

Apple macOS AppleIntelKBLGraphics Out-Of-Bounds Read Information Disclosure Vulnerability (CVE-2025-43283)

CVE number = CVE-2025-43283 This vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An

Read More
NewsSecurity Vulnerabilities

Samsung MagicINFO 9 Server – database account and password are hardcoded (CVE-2026-25202)

– The database account and password are hardcoded, allowing login with the account to manipulate the database in MagicInfo9 Server.

Read More
NewsSecurity Vulnerabilities

Hancom Office DOC File Parsing Type Confusion Remote Code Execution Vulnerability (CVE-2025-29867)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hancom Office.

Read More
NewsSecurity Vulnerabilities

Vulnerability in WordPress File Uploads Addon for WooCommerce plugin (CVE-2026-24625)

– Missing Authorization vulnerability in Imaginate Solutions File Uploads Addon for WooCommerce woo-addon-uploads allows Exploiting Incorrectly Configured Access Control Security Levels.

Read More
Cyber SecurityNews

NCSC issues warning over hacktivist groups disrupting UK organisations and online services

– On the 19th January 2026, the National Cyber Security Centre (NCSC) – a part of GCHQ – has issued an alert highlighting the persistent targeting of UK organisations by Russian state-aligned hacktivist groups aiming to disrupt networks. 

Read More
NewsSecurity VulnerabilitiesUncategorized

Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability (CVE-2026-20092)

– A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could allow an authenticated, local attacker with administrative privileges to elevate privileges to root on the virtual appliance.

Read More
NewsSecurity Vulnerabilities

Cisco Unified Communications Products Remote Code Execution Vulnerability (CVE-2026-20045)

CVE number = CVE-2026-20045 A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition

Read More
NewsSecurity Vulnerabilities

Enel X JuiceBox 40 Telnet Service Missing Authentication Remote Code Execution Vulnerability (CVE-2026-0778)

– This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Enel X JuiceBox 40 charging stations.

Read More